Skip to main content

Repository → 💼 SOC 2 → 💼 CC6 Logical and Physical Access Controls → 💼 CC6.6 The entity implements logical access security measures to protect against threats from sources outside its system boundaries.

💼 CC6.6-1 Restricts Access

  • ID: /frameworks/soc-2/cc6/06/01

Description

The types of activities that can occur through a communication channel (for example, FTP site, router port) are restricted.

Similar

  • Internal
    • ID: dec-c-c58e6bd0

Sub Sections

SectionSub SectionsInternal RulesPoliciesFlagsCompliance

Policies (19)

PolicyLogic CountFlagsCompliance
🛡️ AWS EC2 Security Group allows unrestricted DNS traffic🟢1🟢 x6no data
🛡️ AWS EC2 Security Group allows unrestricted FTP traffic🟢1🟢 x6no data
🛡️ AWS EC2 Security Group allows unrestricted ICMP traffic🟢1🟢 x6no data
🛡️ AWS EC2 Security Group allows unrestricted NetBIOS traffic🟢1🟢 x6no data
🛡️ AWS EC2 Security Group allows unrestricted RPC traffic🟢1🟢 x6no data
🛡️ AWS EC2 Security Group allows unrestricted SMTP traffic🟢1🟢 x6no data
🛡️ AWS EC2 Security Group allows unrestricted traffic to MSSQL🟢1🟢 x6no data
🛡️ AWS EC2 Security Group allows unrestricted traffic to MySQL🟢1🟢 x6no data
🛡️ AWS EC2 Security Group allows unrestricted traffic to PostgreSQL🟢1🟢 x6no data
🛡️ AWS RDS Instance is publicly accessible and in an unrestricted public subnet🟢1🟢 x6no data
🛡️ AWS RDS Snapshot is publicly accessible🟢1🟢 x6no data
🛡️ Azure App Service FTP deployments are not disabled🟢1🟢 x6no data
🛡️ Azure App Service HTTPS Only configuration is not enabled🟢1🟢 x6no data
🛡️ Azure Network Security Group allows public access to RDP port🟢1🟢 x6no data
🛡️ Azure Network Security Group allows public access to SSH port🟢1🟢 x6no data
🛡️ Google Cloud SQL Server Instance remote access Database Flag is not set to off🟢1🟢 x6no data
🛡️ Google GCE Instance Enable Connecting to Serial Ports is not disabled🟢1🟢 x6no data
🛡️ Google GCE Instance IP Forwarding is not disabled.🟢1🟢 x6no data
🛡️ Google GCE Network has Firewall Rules which allow unrestricted SSH access from the Internet🟢1🟢 x6no data

Internal Rules

RulePoliciesFlags
✉️ dec-x-3e379c671
✉️ dec-x-4c15a09f1
✉️ dec-x-6eab9b881
✉️ dec-x-11c3009f1
✉️ dec-x-42a090841
✉️ dec-x-75db76ad1
✉️ dec-x-293ab45b1
✉️ dec-x-599c86b41
✉️ dec-x-66358b451
✉️ dec-x-b33429051
✉️ dec-x-c0a7793e1
✉️ dec-x-ca1c0c0d1
✉️ dec-x-f12d78aa1
✉️ dec-x-f937c35f1
✉️ dec-z-dbeeed9f1
✉️ dec-z-f778950c1